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IN THE CLAIMS : 

Please amend the claims as follows: 

5 1. (Currently Amended) A method pei formed by a first set vet 1 for authenticating a 

user, comprising: 

obtaining an asserted identity of said user; 

obtaining a random subset of questions that said user has previously answered 
with a third party customer verification server that is independent of said first server ; and 
10 presenting one or more questions to said user 1 from said random subset of 

questions until a predefined security threshold is satisfie d, wherein said user is authenticated 
when said predefined security threshold is satisfied . 

2. (Original) The method of claim 1, wherein said user is directed to said customer 
15 verification server during an enrollment phase., 

3, (Original) The method of claim 1, wherein said user verification server instructs 
said user to select and answer a number 1 of questions that will be used for 1 verification., 

20 4. (Original) The method of claim 3, further comprising the step of storing said 

selected questions at said user's location 

5. (Original) The method of claim 3, further comprising the step of storing said 

selected questions at said customer verification server . 

25 

6 (Original) The method of claim 3, wherein said obtaining step further comprises 

the step of receiving an indication of said selected questions from said customer verification 
server . 
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7. (Original) The method of claim 6, wherein said obtaining step fiiithei comprises 

the step of obtaining answers from said user for said selected questions 

8 (Original) The method of claim 1, wher ein said presenting step is performed by an 

5 authentication module . 

9. (Original) The method of claim 8, wherein said authentication module obtains 

answers to said presented questions from said user. 

10 10. (Original) The method of claim 1, wherein said predefined security threshold is 

based on a sum of security weights of correctly answered questions., 

11. (Original) The method of claim 1, wherein one or more of said questions are 
dir ected to an opinion of said user . 

15 

12. (Original) The method of claim 1, wherein one or more of said questions are 
directed to a trivial fact. 

13. (Original) The method of claim 1, wherein one or more of said questions are 
20 directed to an indirect fact., 

14 (Original) The method of claim 1, further comprising the step of presenting said 

user with a larger pool of potential questions for selection of one or more questions to answer 

25 15. (Original) The method of claim 14, further comprising the step of ensuring that 

said questions selected by said user meet predefined criteria for topic distribution., 

16 (Cancelled). 
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17. (Cancelled). 

18.. (Original) The method of claim 1, wherein said questions from said random 

subset of questions are pr esented to said usei in a random order . 

5 

19 (Original) The method of claim 1, wherein said questions are presented to said 

usei in the foim of an index identifying each question 

20. (Original) The method of claim 1, wherein said usei responds to said questions by 

10 returning an index identifying each answer.. 

21 (Original) The method of claim 20, wherein said index identifying each answer 

can be aggregated to form a password, 

15 22. (Original) The method of claim 20, wherein a portion of each answer can be 

aggregated to form a password, 

23 (Original) The method of claim 1, further comprising the step of storing an 
indication of said subset of questions on a device or wallet car d or piece of paper associated with 

20 said user . 

24 (Currently Amended) An apparatus for authenticating a user, comprising: 
a memory; and 

at least one processor, coupled to the memory, operative to: 
25 obtain an asserted identity of said user; 

obtain a random subset of questions that said user has previously answered with a 
third party customer verification server that is independent of an entity associated with said 
apparatus ; and 
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present one 01 more questions to said user from said random subset of questions 
until a predefined secuiity threshold is satisfied , wherein said user is authenticated when said 
predefined security threshold is satisfied 

5 25 (Original) The apparatus of claim 24, wherein said user is directed to said 

customer verification sei vei during an enrollment phase. 

26. (Original) The apparatus of claim 24, wherein said customer verification server 

instructs said user to select and answer a number of questions that will be used for verification 

10 

27 (Original) The apparatus of claim 26, wherein said processor is further configured 

to store said selected questions at said user's location 

28 . (Original) The apparatus of claim 26, wherein said processor is further configured 
15 to store said selected questions at said customer verification server. 

29. (Original) The apparatus of claim 26, wherein said obtaining step further 
comprises the step of receiving an indication of said selected questions from said customer 
verification server, 

20 

30. (Original) The apparatus of claim 24, wherein said presenting step is performed 
by an authentication module 

3 1 (Original) The apparatus of claim 24, wherein said processor is further configured 
25 to ensure that questions selected by said user meet predefined criteria for topic distribution, 

32 . (Original) The apparatus of claim 24, wherein said processor 1 is further 1 configured 
to ensure that answers to user selected questions cannot be qualitatively correlated with said user . 
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33 (Original) The apparatus of claim 24, wherein said processor is further configured 

to ensure that answers to user selected questions cannot be quantitatively correlated with said 

user. 

5 34 (Original) The apparatus of claim 24, wherein said questions from said random 

subset of questions are presented to said user in a random order., 

35 (Original) The apparatus of claim 24, wherein said questions are presented to said 

user in the form of an index identifying each question 

10 

36, (Original) The apparatus of claim 24, wherein answers to said questions are 
received from said user 1 in the form of an index identifying each answer 

37, (Original) The apparatus of claim 36, wherein said index identifying each answer 
1 5 can be aggregated to form a password 

38, (Original) The apparatus of claim 36, wherein a portion of each answer can be 
aggregated to form a password. 

20 39 . (Currently Amended) An article of manufacture for' authenticating a user b y a fust 

server , comprising a machine readable medium containing one or more programs which when 
executed implement the steps of: 

obtaining an asserted identity of said user ; 

obtaining a random subset of questions that said user has previously answered 
25 with a third paity customer verification server' that is independent of said first server ; and 

presenting one or' more questions to said user from said random subset of 
questions until a predefined security threshold is satisfie d, wherein said user is authenticated 
when said predefined security threshold is satisfied 
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